Thanks for signing up with Shortly, you’ll be receiving an e-mail in which you need to confirm your subscription. After confirming, your 10% voucher will be sent to your e-mail address.

Data protection statement of FALKE KGaA

We at FALKE KGaA are delighted that you have visited our website and have shown interest in our company and products. We place great value on the protection of your personal data. Your data is captured in accordance with the statutory regulations. In the following, we explain which information FALKE KGaA captures during your visit to our website and how this information is used.

1. Object of the data protection statement

This data protection statement applies to the capture, processing and use (together
hereinafter referred to as “use”) of your personal data when you visit our websites, the use of our online shop and the offers associated with them (e.g. newsletters). Personal data (hereinafter referred to as “data”) is all pieces of individual information about the personal or material relationships of an identified or identifiable natural person,
e.g. name, address, email address, date of birth, bank details.

Capturing and storing personal data

We only capture personal data if you inform us of this data, for example, if you get in contact with us. We will naturally use the personal data transmitted to us in this way exclusively for the purpose for which you have provided us with it when contacting us.
The sharing of this information is made on an expressly voluntary basis and with your consent. Provided it concerns information about communication channels (e.g. email address, telephone number), you also agree that we, if required, will also contact you via these communication channels to answer your enquiry.
You can, of course, withdraw your consent at any time with future effect. Please contact our Data Protection Officer, whose contact details can be found below, with regard to this.
If you are a customer or registered user of this website, the IP address that was allocated to your terminal device on registration is stored until the end of the registration. The same applies, if you have purchased a product in our online shop. Then the time and the IP address from the time when the order was made are stored for as long as you are a registered user of this website.
The same applies if you subscribe to an email newsletter. When you register for a newsletter, the IP address used is also stored.
Personal data are only collected and stored as part of the use of our offers, if you provide us with these via an order form. If there is no purpose for the use, the data are erased.
In the course of an order or when opening a customer account, the following data, in particular, are collected:

Salutation, title

Name, first name, date of birth

Address

Email address

Telephone number, if required

When carrying out an order, payment information, if required, such as bank details or credit card number.

2. General information on data processing

1. Scope of the processing of personal data

In principle, we process the personal data of our users only insofar as this is required to provide a functioning website as well as our content and services. The processing of the personal data of our users takes place regularly only with the consent of the user. An exception to this applies in such cases where the obtaining of such consent is not possible for real reasons and the processing of data is permitted by statutory regulations.

2. Legal basis for processing personal data

If we ask a data subject for consent to use their personal data for processing operations, Article 6(1) lit. a of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
When it is required that we process personal data to fulfil a contract to which the data subject is a party, Article 6(1) lit. b GDPR serves as the legal basis. This also applies to processing operations that are required to carry out pre-contractual measures.
If we are required to process personal data to fulfil a legal obligation to which our company is subject, Article 6(1) lit. c GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1) lit. d GDPR serves as the legal basis.
If processing is required to safeguard a legitimate interest of our company or a third-party and the interests, constitutional rights and fundamental freedoms of the data subject do not outweigh the first-named interest, Article 6(1) lit. f GDPR serves as the legal basis for the processing.

3. Erasure of data and duration of storage

The personal data of the data subject is erased or blocked as soon there is no longer a purpose for storage. Storage can take place beyond this if it is provided for by Union law directives, laws or other regulations by European or national legislators to which the controller is subject. Data is also blocked or erased if a retention period prescribed by the standards mentioned expires, unless there exists a requirement for further storage of the data for the conclusion of a contract or the performance of a contract.

3. Provider identification

The service provider within the meaning of Section 13 German Teleservices Act (Telemediengesetz) and the data controller within the meaning of the German Federal Data Protection Act (Bundesdatenschutzgesetzes) is FALKE KGaA, Oststraße 5, 57392 Schmallenberg, Germany. More detailed information can be obtained from our Imprint webpage.
If you have any questions about this data protection statement, please contact us by email at datenschutz@FALKE.com

4. Provision of website and generation of log files

1. Use of our websites for information purposes

If you visit our website purely for information purposes, i.e. if you transmit no personal information to us and/or do not register to use our online shop, we collect only such data that is sent to us automatically by your web browser. This is:

Date and time of access

Timezone difference to Greenwich Mean Time (GMT)

Content of request (concrete website)

Access status/HTTP status code

The amount of data transferred in each case

Website from which the request comes

The last website visited

Operating system used

Information about the browser type

Browser settings

Language and version of browser software

User’s IP address

The log files contain IP addresses or other data that enable an association with a user. For example, this could be the case if the link to the website from which the user accesses the website or the link to the website to which the user changes contains personal data.
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Legal basis for the data processing

The legal basis for the temporary storage of data and the log files is Article 6(1) lit. f GDPR.

3. Purpose of the data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. The user’s IP address must be stored for the duration of the session.
The storage in log files is carried out to ensure the functionality of the website. In addition, the data serves to optimise the website and to ensure the security of our IT systems.
These purposes include our legitimate interest in the data processing pursuant to Article 6(1) lit. f GDPR.

4. Duration of storage

The data is erased as soon as it is no longer required to achieve the purpose of its collection. This happens when the particular session has ended, in the event of data being captured for the provision of the website.
When data is stored in log files, it happens after seven days at the latest. It is possible for data to be stored beyond this point. In this instance, the IP addresses of the users are erased or anonymised, so that an association with the accessing client is no longer possible.

5. Possibility of objection and removal

The capture of data for the provision of the website and the storage of data in log files is absolute necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.

5. Registration

1. Description and scope of data processing

On our website, we offer users the opportunity to register by entering their personal data. The data is entered into an input mask, transmitted to us and stored. The data is not passed on to third parties. The following data is collected as part of the registration process:

User’s IP address

Date and time of registration

First name, surname

Email address

Access authorisation

The user’s consent to process this data is obtained as part of the registration process.

2. Legal basis for the data processing

The legal basis for the processing of data is the presence of consent by the user pursuant to of Article 6(1) lit. a GDPR.

3. Purpose of processing

The user’s registration is required to provide certain content and services on our website.

4. Duration of storage

The data is erased as soon as it is no longer required to achieve the purpose of its collection.
This is the case for data collected during the registration process if the registration on our website is cancelled or amended.

5. Possibility of objection and removal

As the user, you have the option of cancelling the registration at any time. You can have the stored data that concerns you amended at any time.

6. Use of our online shop

If you would like to use our online shop, we require the use of further data.

1. Data for order processing

If you would like to use services in our online shop, it is necessary that you give us the data that is required to process the order. You have the choice of entering the necessary data just for a particular order or you can set up a customer account, where your data is stored for later purchases.
If you do not set up a customer account, we store your data for the purpose of performing the contract and erase it as soon as we are no longer legally obliged to retain it. Information required for the execution of the contracts is marked separately. Any further information is voluntary.
If you create a customer account or revise data you have already entered, the data you entered will be saved revocably in your account settings and can be used for further orders without you having to enter it again. Your customer account can be deleted at any time by sending a request to the data controller (online@falke.com).
Your data is used for the purpose of processing your order if you have set up a customer account in our online shop and also to facilitate further orders. To prevent unauthorised access by third parties to your personal data, the order process is encrypted using SSL technology.
To deliver your goods, we pass on your address details to a shipping company contracted by us.
For the processing of payments, we pass on the required data to the payment service provider you have selected. We collaborate with the following payment service providers: American Express, Mastercard, Visa, PayPal, Amazon Pay, Sofort GmbH and iDeal. The payment service provider you select is responsible for your payment data in each case.
All service providers or associated companies involved in processing an order are also bound by the regulations of the German Federal Data Protection Act and other regulations and act exclusively on the instruction of FALKE KGaA.

2. Credit check

To protect ourselves from non-payment, while also being able to offer our customers the best possible options for the choice of payment method in our online shop, we transmit your data (name, address and, if required, date of birth) for the purpose of a credit check, obtaining information for assessing the risk of non-payment, based on a statistical process using address details and for the verification of your address (verification of deliverability) to infoscore Consumer Data GmbH, Rheinstraße 99, 76532 Baden-Baden, informa Solutions GmbH, Rheinstraße 99, 76532 Baden-Baden and/or BFS finance Münster GmbH, Hölten-weg 33, 48155 Munster. We use the information received about the statistical probability of non-payment to make a balanced decision about the establishment, implementation or termination of the contractual relationship. The legal basis for these transmissions is Article 6(1)(b) and Article 6(1)(f) GDPR. Data may only be transmitted based on these provisions to the extent that the data is necessary for safeguarding the legitimate interests of our company or third parties and does not override the interests of fundamental rights and freedoms of the data subject requiring protection of their personal data. Your interest requiring protection are considered in accordance with this statutory provision. Detailed information on ICD within the meaning of Article 14 European General Data Protection Regulation (“EU GDPR”), i.e. information on the business purpose, purposes of data storage, data recipients, right to access personal data, right to demand erasure or rectification etc. can be found in the appendix or at the following link: https://finance.arvato.com/icdinfoblatt.

“By confirming this check box and clicking on the “Payment” button, you consent to FALKE obtaining information about your payment history and your creditworthiness based on statistical processes using your address details for the purpose of a credit check and, to do so, transmitting the customer data necessary (name, address, date of birth, email address, telephone and, if required, bank details) to infoscore Consumer Data GmbH, Rheinstraße 99, 76532 Baden-Baden, informa Solutions GmbH, Rheinstraße 99, 76532 Baden-Baden and/or BFS finance Münster GmbH, Höltenweg 33, 48155 Munster. Under consideration of this customer data as well as the information received about the statistical probability of non-payment, a balanced decision is made with regard to which payment options may be granted to you.
This data is collected again every time you make a purchase. I am aware that this consent is voluntary and I can refuse or withdraw it at any time by sending an email to datenschutz@FALKE.com . I am also aware that, in this instance, the “Pay now” payment method is the only payment option open to me. You will also find the process described in our data protection statement. “In the event that you do not agree with the collection of credit information as described in this clause, you can object or withdraw consent to the collection of this data at any time by sending an email to datenschutz@FALKE.com . However, please note that, in this instance, we can only offer you the “Pay now” payment method.

3. User account

You can also take advantage of our online offers by using a profile. This profile consists of a username and password (pseudonym). Please be sure to keep your password secret to prevent misuse and, in your own interest, keep
your data up-to-date. You are responsible for all transactions that are initiated under your username on the basis of your actions. Setting up a profile is entirely voluntary. It serves the sole purpose of making it easier for you to use our offers and to individually design and continuously improve our offers. We use your profile data only to process orders, to provide additional services commissioned by you and to process payments. If you have not otherwise given us your consent to be able to inform you about other offers, we will only communicate with you by telephone or e-mail for the stated purposes. We will erase your profile data if you inform us that the profile should be erased, provided that we are not obliged or entitled to continue to store the data under applicable law.

4. Server log files

The provider (or its web space provider) collects data on every access to the offer (server log files). The access data includes:
Name of the accessed website, date and time of access, data volume transmitted, confirmation of successful retrieval of data, browser type and version, user’s operating system, referrer URL (webpage that sent user to the site), IP address and the requesting provider.
The provider uses protocol data only for statistical evaluation for operating, security and offer optimisation purposes. However, the provider reserves the right to check the protocol data subsequently, should there be solid grounds to indicate unlawful use.

7. Contact form and email contact

1. Description and scope of data processing

There is a contact form on our website that can be used to initiate contact electronically. If a user takes this option, the data entered in the input mask is transmitted to us and stored. This data is:

User’s IP address

Date and time of registration

First name, surname

Email address

Order or invoice number (optional)

Message text

At the time of sending the message, the following data is also stored:

User’s IP address

Date and time of registration

For processing your data within the scope of the sending process, your consent will be obtained and you are referred to this data protection statement.

2. Legal basis for the data processing

The legal basis for the processing of data is the presence of consent by the user pursuant to of Article 6(1) lit. a GDPR.

3. Purpose of the data processing

The processing of personal data that we obtain from the input mask serves only to enable us to process your contact with us. If you contact us by email, there is also the required legitimate interest in the processing of data.
The other personal data processed during the sending procedure serves to prevent misuse of the contact form and to ensure the security of our IT systems.

4. Duration of storage

The data is erased as soon as it is no longer required to achieve the purpose of its collection. This is the case for personal data from the input mask of the contact form and personal data sent by email, when the respective conversation with the user is terminated. The conversation is terminated when it can be inferred from the circumstances that the facts in question have been finally clarified.
Additional personal data collected during the sending procedure is erased after a period of seven days at the latest.

5. Possibility of objection and removal

The user has the option of withdrawing consent to the processing of personal data that concerns him or her at any time. If the user contacts us by email, he or she can object to the storage of his or her personal data at any time. In such an event, the conversation cannot be continued.
All personal data that was stored over the course of your contact with us is, in this instance, erased

8. Email security

The user agrees to electronic communication, as soon as he or she has made electronic contact with FALKE KGaA. The user is advised that emails can be read or changed without authorisation and without it being noticed through this transfer channel. FALKE KGaA uses software filtering for unwanted emails (spam filter). Through the spam filter, emails can be rejected if they are identified as spam through certain characteristics.

9. Job applications via our website

The protection of personal data is an important matter for us. We handle the data you provide to us in compliance with the statutory regulations, in particular those relating to data protection.

1. Application information

We collect different types of information. This includes, in particular, your personal data with contact information as well as a description of your education and training, work experience and skills. Furthermore, you have the option of sending us electronically stored documents such as certificates or cover letters. With your application, you ensure that the information you provide is true. We would point out that any false statement or conscious omission can represent a reason for a rejection or subsequent dismissal. We do not require any information from you that is not usable according to the German Equal Treatment Act (Gleichbehandlungsgesetz) (race, ethnic origin, gender, religion or ideology, disability, age or sexual identity). We do not ask you to share information on illness, pregnancy, ethnic origin, political views, philosophical or religious convictions, membership of a trade union, physical or mental health or sexual life. The same applies to content that could infringe the rights of third parties (e.g. copyright, press law or general third-party rights).

2. Collection, processing, use and sharing of your data

Personal data is collected, stored, processed and used only for purposes in connection with your interest in current or future employment with us and in the processing of your application. It is not passed on to third parties. For the use of the online application process, data such as name, address, telephone number, email address etc. is collected. This data serves principally to contact you in relation to your application. If your application is successful, the data entered can be used for administrative concerns as part of the employment. Your online application is processed and noted exclusively by the relevant contact partner in our company. All members of staff who are entrusted with data processing are obliged to safeguard the confidentiality of your data. Third parties do not receive knowledge of your information under any circumstances. The processing of data is carried out exclusively in Germany.

3. Legal basis for the data processing

The legal basis for the processing of your personal data in this application process is primarily Section 26 German Federal Data Protection Act (BDSG) in the version valid from 25/05/2018. This allows the processing of data required in connection with the decision to establish an employment relationship. If the data should be required once the application process is concluded for a criminal prosecution, data processing can be carried out on the basis of the prerequisites of Article 6 GDPR, in particular to safeguard the legitimate interests pursuant to Article 6(1) lit. f GDPR. Our interest then lies in the establishment or defence of claims.

4. Storage

If we are not able to offer you a position, we will store the data transmitted by you for up to 6 months for the purpose of answering questions in connection with your application and rejection. However, if your application documents are basically of interest and there is currently no suitable position for you, you consent herewith that we include your data in our applicant pool. This means, we can contact you with future job offers. If you do not receive any requests from us, the data is erased after two years.

5. Consent to storage of job application data

If my application is not successful, I consent to FALKE KGaA storing the personal data that I shared in connection with the entire application process (particularly in my cover letter, CV, certificates, motivation letter etc.) beyond the period of the actual application process. I consent to FALKE KGaA using this data to contact me later, if necessary, should I be considered for another position.
Provided I, in my application letter or other
documents I submitted during the application process, shared “special types of personal data” (e.g. a photo that allows ethnic origin to be recognised, information on disability etc.) my consent also relates to this data. This consent also applies to data about my qualifications and activities from generally available data sources (in particular, professional social networks), which FALKE KGaA has collected as part of the application process. This consent is voluntarily and has no effect on my chances in this application process. I can refuse to give my consent without giving any reasons, without fear of disadvantage. In addition, I can withdraw my consent at any time by sending an email to humanresources@FALKE.com. In this instance, my data will be erased without undue delay (after conclusion of the application process).

6. Erasure of data, withdrawal of consent

You have the right at any time to request more detailed information about the stored data that concerns you, to see this data and to request that inaccurate data about you be corrected or that the stored data be completely or partially deleted. After giving your consent, you have the option of withdrawing it at any time subsequently. Your withdrawal can be sent to the person named in the job advert as contact person or to the following email address humanresources@FALKE.com.

7. Data security

We place great importance on the highest level of security of our system and deploy modern data storage and security technologies to protect your data optimally. This includes measures such as anti-virus software and a firewall. Obviously, our security measures are continually improved in line with technological developments. Your data is transmitted in encrypted form and then stored in a database. All systems in which your personal data is stored are protected from access and only accessible by a particular set of people responsible for personnel. In addition, the data is processed exclusively in computer centres of the Federal Republic of Germany.

8. Your rights as a data subject

You have the right to access the personal data concerning you which we process.
If you make a request for information that is not in writing, we hope you will understand that we may require from you documentary proof that you are the person you say you are.
Furthermore, you have a right to rectification or erasure of the data, or to restriction of the processing, insofar as you are legally entitled to do so.
Furthermore, you have a right to object to the processing as part of the statutory regulations. The same applies to a right to data portability.

10. Use of cookies

1. Description and scope of data processing

Cookies are text data (ASCII text files) which are placed on your computer via your browser (e.g. Internet Explorer, Firefox, Chrome etc.). If you revisit the website which
sent the cookie to your browser, you will be recognised here and addressed individually. They enable our systems to recognise your browser and to offer you services such as comfort cookies.
The help function in the menu bar of most Internet browsers explains how you can prevent your browser from accepting new cookies, how you can ensure that your browser informs you whenever you receive a new cookie and how to disable all the cookies you have received. However, as you can only use and experience the most interesting features with cookies, we recommend that you turn on cookies.
Furthermore, if you share a computer with others and the browser is configured to accept cookies, we recommend that you always log out completely once you have finished using the computer.
For the websites of FALKE.com or burlington.de, this means that if you choose to accept the comfort cookie, you no longer need to log in with your username and password.
Please note: Cookies are only valid for the terminal device on which they are stored. If you use cookies, logging in is facilitated only on the computer on which you have turned on cookies.
Many internet users have reservations about cookies. For this reason, FALKE.com gives you the choice of whether to accept cookies or notTo prevent mistakes:

Cookies cannot transfer any viruses

Cookies cannot read any email addresses

Cookies cannot read the contents of any drive

Cookies cannot transfer your history file

Cookies cannot send any undetected emails

Cookies cannot write over or delete the entire hard drive

2. Restrictions

Cookies are intended for individual computers. If your computer is accessible to others, you should refuse the deployment of comfort cookies, because when you access the FALKE.com or burlington.de websites, you will be logged in without your password being requested. Basically, browsers are set to accept cookies by default. If this is not the case, you need to change your browser setting to accept cookies before you can take advantage of comfort or standard cookies from FALKE.com.
When you use our websites – both for purely informational purposes and to visit our online shop – cookies are stored on your terminal device. Cookies are small text files, which are assigned to/stored on your hard drive by your browser and through which the site that places the cookie (i.e. either us or, if required, a third-party) receives certain information.
Among other things, we place cookies to make the web offer more user-friendly and effective as a whole and to be able to identify you on subsequent visits. Furthermore, a number of the analysis tools and online advertising services described below also use cookies.

3. This website uses cookies in the following scope:

Session cookies

Transient cookies (temporary deployment)

Persistent cookies (time-restricted deployment)

Third-party cookies (from third parties)

Session cookies are used to confirm a new session/visit. The cookie is created if JavaScript library is executed and no other available utmb cookies exist. Every time data is sent to Google Analytics, the cookie is updated. At the end of the browser session, the cookie works to ascertain whether the user was in a new session or visit.
Transient cookies are deleted automatically when you close your browser. These include session cookies, in particular. These store a session ID, with which the different requests of your browser can be assigned to the common session. This will allow your terminal device to be recognized when you return to the website. We use this type of cookie to ensure the operation and functionality of our website. The session cookies are deleted when you log out or close the browser.
Persistent cookies are deleted automatically after a preset period, which can differ depending on the cookie. We use this type of cookie to increase the user-friendliness of our website by storing user-specific settings.
Third-party cookies are cookies that are placed and captured by a third party. We use this type of cookie for the purpose of payment processing in our online shop and for advertising. Should you not agree to the use of cookies, you can delete the cookies in the security settings of your browser at any time or configure your browser not to accept these cookies. In addition, you can set your browser to reject the acceptance of third-party cookies. However, as a precautionary measure, we would like to point out that you may not be able to use all the functions of our website.

4. Legal basis for the data processing

The legal basis for the processing of personal data by using cookies that are required for technical purposes is Article 6(1) lit. f GDPR.
The legal basis for the processing of personal data using cookies for analytical purposes is the granting of consent by the user pursuant to Article 6(1) lit. a GDPR.

5. Purpose of the data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be provided without the use of cookies. For these, it is required that the browser is recognised again even after switching between web pages.
Analysis cookies are used to improve the quality of our website and its content. Through analysis cookies, we can find out how the website is used and can therefore constantly optimise our offer.
These purposes include our legitimate interest in the data processing pursuant to Article 6(1) lit. f GDPR.

6. Duration of storage, possibility of objection and removal

Cookies are stored on the user’s computer and transmitted from there to our website. Therefore, as the user, you have full control over the use of cookies. By changing the settings in your web browser, you can deactivate or restrict the transfer of cookies. Cookies that have already been stored can be deleted at any time. This can also be carried out automatically. If cookies are deactivated for our website, it is possible that not all of the functions of the website can be used in full.

11. Newsletter

1. Description and scope of data processing

For registration to our newsletters, we use what is known as a double opt-in process. This means that we will send you a confirmation e-mail to the specified e-mail address, in which we ask you to confirm that you wish to receive the newsletter. The confirmation is carried out by clicking on the activation link contained in the confirmation email. After receipt of confirmation, we send you our newsletter by email. We store your email address until you unsubscribe from the newsletter. The storage serves the sole purpose of enabling us to send you the newsletter. In addition, we store the IP addresses and times of your subscription and confirmation in order to prevent misuse of your personal data. After confirmation, we store your email address for the purpose of sending the newsletter. The legal basis is Article 6(1) p.1 lit. a GDPR.
When you register for the newsletter, the data from the input mask is transmitted to us. The entry of your date of birth is voluntary and is used solely to personalise the newsletter. This personal data you enter is not passed on to third parties.
We would like to point out that we analyse your user behaviour when we send the newsletter. For this analysis, the emails sent contain web beacons (also called tracking pixels). These are single-pixel image files that enable us, with the involvement of third-party providers, to evaluate your user behaviour and ascertain which of the email messages we sent were opened and when, which links were clicked on and what reaction this caused. To do so, the respective web beacons are assigned to your email address and linked to an individual ID. This individual ID is also contained in the links received in the newsletter. With the data obtained in this way, we create a user profile and deduce from this your personal interests so that we can provide a newsletter that is tailored to your interests. We link the collected data with the other data available from you. To send the newsletter, and for the above-mentioned analysis, we use the service provider Mapp Digital Germany GmbH.
You can object to tracking at any time by sending us an informal email to online@FALKE.com or online@burlington.de. As a rule, you can stop such tracking by deactivating the display of images by default in the email program used on your computer. However, in this instance, the newsletter will not be displayed completely and it is possible that you will not be able to use all functions. As soon as you display the images contained in the newsletter manually, the above-mentioned tracking is reinstated.
The consent you give when registering for the newsletter is worded as follows:
“I would like to receive the FALKE newsletter and agree to FALKE regularly sending me interesting offers and information by email for advertising purposes to the email address I have provided. My email address will not be passed on to other companies.
“I would like to receive the Burlington newsletter and agree to Burlington regularly sending me interesting offers and information by email for advertising purposes to the email address I have provided. My email address will not be passed on to other companies.
Furthermore, I consent to the analysis of my reader behaviour as part of receiving the newsletter. This is carried out with the help of web beacons in each email sent, which automatically transmit information about when the newsletter is read and which links within it are clicked on. With the data obtained in this way, a user profile about me is created to be able to tailor the newsletter to my individual interests. The captured data is linked to other available data about me and combined in a user profile.

2. Legal basis for the data processing

The legal basis for the processing of data after the user has registered for the newsletter is the granting of consent by the user pursuant to Article 6(1) lit. a GDPR.
The legal basis for sending the newsletters as a result of the purchase of goods or services is Section 7(3) German Act Against Unfair Competition (UWG).

3. Purpose of the data processing

The collection of the user’s email address serves to enable us to deliver the newsletter.
The collection of other personal data as part of the registration process serves to prevent misuse by third parties or of the email address used.

4. Duration of storage

The data is erased as soon as it is no longer required to achieve the purpose of its collection. The user’s email address is stored after this for as long as the subscription to the newsletter is active.
The additional personal data collected as part of the registration process is usually erased after a period of seven days.

5. Possibility of objection and removal

The subscription to the newsletter can be cancelled by the data subject at any time. There is a link for this purpose in every newsletter.
This also enables a withdrawal of consent for the storage of personal data collected during the registration process.

12. Web analysis

It is important to us to design our website as well as we possibly can in order to make it attractive for our visitors. To do this, we need to know how different parts of our website are perceived by our visitors. To do this, we use the following analysis tools:

1. Google Analytics

This website uses Google Analytics, a web analysis service of Google Inc, (1600
Amphitheatre Parkway Mountain View, CA 94043, US; “Google”). The use comprises the
operating mode “Universal Analytics”. This makes it possible to assign data, sessions and interactions across several devices with a pseudonymous user ID in order to analyse the activities of a
user across devices. Google Analytics uses cookies, which are text files stored on your computer to help the website analyse how you use the site. The information generated by the cookie about your use of this website will usually be transmitted to and stored by Google on servers in the United States. In the event of the activation of IP anonymisation on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states to the agreement in the
European Economic Area. Only in exceptional cases will your full IP address be transmitted to a Google server in the United States and shortened there. The IP address transmitted by your browser within the scope of Google Analytics will not be combined with other data from Google. On behalf of the operator of this website, Google will use this information to analyse your use of the website, to compile reports on website activity and to provide the website operator with further services related to website activity and internet usage. These purposes also include our legitimate interest in the data processing. The legal basis for the deployment of Google Analytics is Section 15(3) of the German Teleservices Act (TMG) or Article 6(1) lit. f GDPR. Sessions and campaigns are terminated after a certain period of time. By default, sessions are ended after 30 minutes of inactivity and campaigns after six months. The time limit for campaigns may not exceed two years. The storage of user and event data does not expire. Further information on terms of use and data protection can be found at https://www.google.com/analytics/terms/gb.html or at https://policies.google.com/?hl=en&gl=UK. In addition, you can prevent data generated by cookies and data related to your use of the website (including your IP address) being sent to Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en&gl=UK You can prevent data capture by Google Analytics by clicking on the following link. An opt-out cookie will be placed on this computer, which prevents the future collection of your data when visiting this website: Deactivating Google Analytics. More detailed information on data protection as part of Google Analytics can be found at: https://support.google.com/analytics/answer/6004245?hl=en&gl=UK.

Google Analytics - Contract for Order Processing Agreement-

Since, in the opinion of the regulatory authorities, website operators act as the client when using Google Analytics and Google as the contractor, we have concluded a written contract with Google for an order processing agreement.

2. Google Ads conversion tracking

This website also uses the online advertising program “Google Ads” and conversion tracking within the scope of Google Ads. Google conversion tracking is an analytical service of Google Inc. (1600 Ampitheatre Parkway, Mountain View, CA 94043, USA; “Google”). When you click on an advertisement placed by Google, a conversion tracking cookie is placed on your device. These cookies expire after 30 days, do not contain personal data and therefore cannot be used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, we and Google can see that you clicked on the advert and were redirected to this page. Every Google Ads customer receives a different cookie. This makes it impossible to keep track of cookies across the websites of different Ads customers. The information obtained through the conversion cookie serves to compile conversion statistics for Ads customers who have decided to make use of conversion tracking.
In this way, customers find out the total number of users who clicked on their advert and were redirected to a page with a conversion tracking tag. Customers do not, however, receive any information with which users can be personally identified. If you do not want to take part in tracking, you can object to this usage by changing the relevant setting of your browser software to prevent the installation of cookies (deactivation option). By doing so you will not be included in the conversion tracking statistics. Further information as well as Google’s privacy policy can be found at: http://www.google.com/policies/technologies/ads/, http://www.google.de/policies/privacy/

3. Google Tag Manager

Google Tag Manager, a service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, US (“Google”), is a solution with which marketers can manage website tags through an interface. The Tool Tag Manager itself, which implements the tags, is a cookieless domain and captures no personal data. However, the tool serves to trigger other tags, which in turn may capture data under certain circumstances. Google Tag Manager itself has no access to this data. If deactivation has been carried out at domain or cookie level, this remains in effect for all tracking tags that are implemented with Google Tag Manager. You can find further information in the user guidelines for this service.

4. Microsoft Bing

On the website, we deploy technologies from Bing Ads (bingads.microsoft.com), which is provided and operated by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, US (“Microsoft”). A cookie is placed on your terminal device by Microsoft, provided that you reached our website via a Microsoft Bing advert. In this way, we and Microsoft Bing can recognise that someone clicked on an advert, was forwarded to our website and reached a conversion site. We learn the total number of users who clicked on a Bing advert and were then forwarded to the conversion site. Microsoft uses cookies to collect, process and use information from which usage profiles are created using pseudonyms.
These usage profiles are used for the analysis of visitor behaviour and are used to run adverts. No personal information relating to the identity of the user is processed. If you do not want information on your behaviour to be used by Microsoft as described above, you can refuse the placement of a cookie required for this – for example, using a browser setting which generally deactivates the automatic placement of cookies. In addition, you can prevent data generated by cookies and data related to the use of the website as well as the processing of this data by Google, being sent to Google, by declaring your objection at the following link: http://choice.microsoft.com/en-UK/opt-out. You can find further information on data protection and on the cookies used by Microsoft and Bing Ads on the Microsoft website: https://privacy.microsoft.com/en-uk/privacystatement.

5. Deployment of social media plugins

On our websites, you can use the social media plugins (e.g. “Like” or “g+1” button) from the social networks Facebook, Google+ and Instagram (hereinafter referred to as “provider”) and recommend, for example, content or products (hereinafter referred to as “plugin”).
We have no influence over the data collected and the data processing events, nor do we know the full scope of the data collection, the purposes of processing or the storage periods.
Neither do we have any information on the erasure of the data collected by the plugin provider.
The plugin provider stores the data it collects as usage profiles, and uses these for the purpose of advertising, market research and/or the needs-based design of its website. Such an analysis takes place, in particular, (even for users who are not logged in) to display needs-based advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of this user profile, whereby you must contact the respective plug-in provider to exercise this right. Through plugins, we offer you the opportunity of interacting with social networks and other users so that we can improve our offer and the design our website to be of greater interest to you. The legal basis for using plugins is Article 6(1) lit. f GDPR.
If you access a page on our website that contains such a plugin, your browser makes a direct connection to the servers of the particular provider. The content of the plugin is transmitted directly to your browser by its provider and integrated into the website. Through this integration, the provider receives information that you have accessed the particular webpage of our website, even if you do not have a user account with the provider concerned or are not logged into the service concerned. This information (including your IP address) is transmitted directly from your browser to a server of the provider concerned in the US, stored there as a usage profile and, among other things, used for the purposes of advertising, market research and needs-based design of the website of the provider.
You have a right to object to the creation of this user profile, whereby you must contact the respective provider of the plug-in to exercise this right. The links to do this can be found below.
If, during your visit to our website, you are logged into your user account with Facebook, Google or Instagram, the particular provider can also associate the visit to the website with your user account. If you interact with a plugin, e.g. if you activate the “Like” or “g+1” button”, the relevant information is also transmitted directly to a server of the particular provider in the US and stored there. The information is also published via your user account on the particular social network and displayed to your contacts there.
Even if you are not logged into the plugins of the providers when you visit our website, the data collected by the plugins can under certain circumstances be associated with your user account. Through a plugin, every time you access the website, a cookie is placed with an ID. Since your browser sends this cookie with every connection to a
server of the respective provider without being asked, Facebook, Google and Instagram could in principle create a profile of which websites have been accessed by the user belonging to the identification. If required, it would then also be possible to associate this ID subsequently with a person – for instance, at the time of a later login with the provider.
Data is passed on regardless of whether you possess an account with the plugin provider and are logged into it. If you are logged into the plugin provider, the data collected on our website is associated directly with your existing account with the plugin provider. If you click on the activate button and, for example, link the website, the plugin provider also stores this information in your user account and shares it publicly with your contacts. We recommend that you log out of a social network regularly when you have finished using it, especially before activating the button, as you can thus prevent the plugin provider from associating this with your profile.
If you do not want the association with your user profile to be made by the plugin provider, you must log out of the particular service before you visit our website. In addition, you can select the “Disable third-party cookies” function in your browser settings. Then your browser no longer sends cookies to the particular server of the social network. With this setting, however, under certain circumstances other functions of other providers will no longer work across other websites, in addition to the plugins. You can also prevent social media plugins from loading altogether with a special add-on for your browser, e.g. with the script blocker “NoScript” (available at http://noscript.net/).
For further information on the purpose and scope of data collection as well as the further processing and use of the data, please refer to the data protection information of the respective providers. There you will also find further information on your rights and setting options for the protection of your privacy and your right to object to the creation of user profiles.
Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. An overview of Facebook plugins and what they look like can be found at the following link: https://developers.facebook.com/docs/plugins
Google+ is operated by Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA. An overview of Google+ buttons and what they look like can be found at the following link: https://developers.facebook.com/docs/plugins. Google’s privacy policy can be found at: http://www.google.de/intl/en/policies/privacy/.
Instagram is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA. The Instagram plugin is characterised by an Instagram logo in the form of an “Instagram camera”. An overview of Instagram plugins and what they look like can be found at the following link: http://blog.instagram.com/post/36222022872/introducing-instagram-badges. Instagram’s privacy policy can be found at: https://instagram.com/about/legal/privacy/.

13. Usage-based Online Advertising Services

1. DoubleClick

DoubleClick is a service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). DoubleClick uses cookies to present you with relevant advertising. A pseudonymous identification number (ID) is allocated to your browser to check which adverts have been displayed in your browser and which adverts have been downloaded. The cookies do not contain any personal information. The use of DoubleClick cookies solely enables Google and its partner websites to place adverts on the basis of previous visits to our other websites. The information generated by the cookie will be transmitted to and stored on servers in the United States by Google for analysis. Google complies with the data protection regulations of the EU-US Privacy Shield agreement and is registered with the EU-US Privacy Shield programme of the US Department of Commerce. A transfer of data by Google to third parties only takes place based on legal regulations or as part of order data processing. Under no circumstances will Google combine your data with other data captured by Google.
You can prevent the storage of cookies by selecting the appropriate setting in your browser software; however, as a precautionary measure, we would like to point out that in this case you may not be able to use all functions of our web pages to their full extent. You can also object to or prevent the collection of data generated by cookies and related to your use of the websites as well as the processing of this data by Google,
by downloading and installing the browser plugin available at the following link under “DoubleClick deactivation extension”. There you will also find Google’s privacy policy.

2. Further usage-based online advertising services

For data collection related to usage-based online advertising, we also use Criteo SA. This service provider collects information about your activities on our websites (e.g. surfing behaviour, sub-pages of the website visited etc.) and combines it into pseudonymous usage profiles. These profiles are then used for the purposes of the usage-controlled display of advertising. This service uses cookies, i.e. text files that are stored on your computer and which enable an analysis of the use of our website to be made.
All usage data is stored under a pseudonym so that personal identification is excluded. The IP address of your terminal device that is transmitted for technical reasons is not stored and not used for the controlled display of advertising.
If you do not want the data to be used or pseudonymous usage profiles to be created, you can opt out by clicking on the following opt-out link and deactivate the particular data collection by placing an opt-out cookie.
In general, you can prevent the capture of the data generated by the cookies about your use of the website by the above service by disabling third party cookies in your browser settings. However, as a precautionary measure, we would like to point out that you may not be able to use all the functions of our website. In addition, you can delete cookies that have already been placed at any time. However, please note that
after deleting all cookies in your browser, you will need to repeat the placement of the opt-out cookies generated via the opt-out link, if required.
In the following, you will also find links to additional data protection information of the above-mentioned service provider, Criteo SA
Data protection information: https://www.criteo.com/en/privacy/
Opt-out link: https://www.criteo.com/en/privacy/ (under “User selection options”) A further option for deactivating cookies is provided by the preference manager of the German Federal Association of the Digital Economy (BVDW) at the link: http://www.meine-cookies.org/cookies_verwalten/praeferenzmanager-beta.htmlwww.youronlinechoices.com/en.

3. Voucher offers of Sovendus GmbH (only in UK)

In order to select a currently interesting voucher offer for you, we will transmit your pseudonymised hash value of your e-mail address and your IP-address in encrypted form to Sovendus GmbH, Moltkestrasse 11, D 76133 Karlsruhe (Sovendus) (Art. 6 par. 1 f GDPR). The pseudonymised hash value of your e-mail address is used to consider a possibly existing objection to receive offers from Sovendus (Art. 21 par.3, Art. 6 par. 1 c GDPR). The IP-address will be exclusively used for data security purposes and as a rule the same will be anonymised after seven days (Art. 6 Abs.1 f DSGVO). Furthermore, we will transmit order number, order value with currency, session ID, coupon code, and time stamp in pseudonymised form to Sovendus for billing purposes (Art. 6 Abs.1 f DSGVO). If you are interested in a voucher offer of Sovendus, while there is no objection existing to receive such offers, and if you click on the voucher banner, we will transmit your form of address, your name and your e mail address in encrypted form to Sovendus to prepare a voucher (Art. 6 par. 1 b, f GDPR).
You will find further information about the processing of your data by Sovendus in their Online Data Protection Notice at https://www.sovendus.co.uk/privacy_policy.

4. Usemax

Usemax advertisement is a service provision of Emego GmbH, Werdener Str. 36, 46047 Oberhausen, Germany. When accessing the Falke website, the user receives a cookie containing a reference to their surfing behaviour via the usemax ad server. The information obtained in this manner serves is used to address the user individually and personally on the FALKE website, by email or via advertising placements on third-party websites connected to usemax. The user can erase the data collected concerning him or her via the following link: https://www.usemax.de/index.php?l=rm&kunde=Falke&id=39238

5. ChannelPilot

This website uses ChannelPilot, an online marketing tool of Channel Pilot Solutions GmbH. This is used on the basis of Article 6(1) p.1 lit. f GDPR. ChannelPilot uses cookies, which are text files that are stored on your computer and which enable an analysis of the use of the website to be made. The information generated by the cookie on your use of the website, such as

Browser type/version

Referrer URL (the previously visited website),

Host name of accessing computer (IP address)

Time of server request

is usually transferred to and stored on a ChannelPilot server in Germany. The IP address transmitted by your browser within the scope of ChannelPilot will not be combined with other ChannelPilot data. In addition, the IP address is only cached by ChannelPilot for a short time (usually, a maximum of 24 hours) and then made unidentifiable. The caching is carried out without exception for the recognition of possible click fraud (bot detection).
On behalf of the operator of this website, ChannelPilot will use this information to analyse the performance of linked online marketing channels, such as idealo.de or Google Shopping. You can prevent the storage of cookies by selecting the appropriate setting in your browser software; however, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. In addition, you can prevent data generated by cookies and data related to the use of the website (including your IP address) being sent to ChannelPilot, as well as the processing of this data by ChannelPilot, by using the opt-out option available at the following link: www.channelpilot.de/optoutAn opt-out cookie will be set on this computer, which prevents the future collection of your data when visiting this website: The opt-out cookie is only valid in the last browser used. If you delete the cookies in this browser, you will need to place the opt-out cookie again.
Further information on data protection in connection with ChannelPilot can be found at www.channelpilot.de/datenschutz

14. Use of Google Maps

The website of FALKE KGaA uses Google Maps (API) of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, US (“Google”). Google Maps is a web service that depicts interactive maps in order to display information visually. When you access the subsites where the Google Maps map is integrated,
information about your use of the website of FALKE KGaA (e.g. the user’s IP address) is transferred to and stored by Google on servers in the USA.
Google will also transfer this information to third parties where required to do so by law or where such third parties process the data on behalf of Google. Google will not under any circumstances combine the user’s IP address with other Google data. Nevertheless, it would be technically possible for Google to use the user data obtained through the use of Google Maps to identify users, create personality profiles of users or process and use it for third-party purposes, over which FALKE KGaA has and can have no influence. Google’s terms of use can be viewed at https://policies.google.com/terms?hl=en&gl=UK. The additional terms of use for Google Maps can be viewed at https://www.google.com/intl/gb_US/help/terms_maps.html. Detailed information on data protection in connection with the use of Google Maps can be found on the Google website (“Google Privacy Policy”): https://policies.google.com/privacy?hl=en&gl=UK. If the user does not agree to the future transmission of his or her data to Google as part of using Google Maps, there is also the option of deactivating the Google Maps web service completely by turning off JavaScript in the browser. Google Maps, and by extension the maps displayed on this internet site, cannot be used if you do this.

15. Protection of Minors

Persons under the age of 16 may not transmit any personal data to FALKE KGaA without the consent of a parent or legal guardian. Personal information may only be made available to FALKE KGaA by persons under the age of 16 with the express consent of a parent or legal guardian, or by persons who are 16 years of age or over. This data is processed in accordance with this data protection statement.

16. Rights of the data subject

If personal data that concerns you is processed, you are a data subject, within the meaning of the GDPR and you have the following rights with regard to the data controller:

1. Right of access

You can request confirmation from the data controller about whether personal data that concerns you is processed by us. If such processing takes place, you can request the following information from the data controller:

The purposes for which the personal data is processed;

the personal data which is processed;

The recipients or categories of recipient to whom the personal data concerning you has been or will be disclosed;

The envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;

The existence of a right to have personal data concerning you corrected or erased, the right to have processing restricted by the controller or a right to object to such processing;

The existence of a right to complain to a supervisory authority;

All available information about the origin of the data where the personal data is not collected from the data subject;

The existence of automated decision-making, including profiling, pursuant to Article 22 (1) and (4) GDPR and – at least in these instances – meaningful information about the logic involved as well as the consequences and intended effects of such processing for the data subject.

You have the right to information about whether personal data is transmitted to a third country or to an international organisation. In this context, you have the right to be informed of appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transmission.

2. Right to rectification

If the processing restriction has been restricted according to the above conditions, you will be informed by the person responsible before the restriction is lifted.

3. Right to the restriction of processing

Subject to the following prerequisites, you can request the restriction of processing of the personal data that concerns you:

If you dispute the accuracy of the personal data concerning you for a period of time that enables the person responsible to verify the accuracy of the personal data;

The processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead;

The data controller no longer needs the personal data for the purposes of processing, but they are required by you for the establishment, exercise or defence of legal claims; or

If you have objected to processing pursuant to Article 21(1) GDPR pending verification of whether the legitimate grounds of the data controller override yours.

Where processing of the personal data that concerns you has been restricted, this data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If the processing of your data is limited, your data may only be processed with your consent for the assertion, exercise or defense of legal claims or to protect the rights of another natural or legal person or for reasons in the public interest of the European Union or of one of its member states.If processing was limited in accordance with the above-stated requirements, you will be notified by the controller before the limitation is lifted.

4. Right to erasure

Erasure obligation

You can request that the data controller erases personal data that concerns you without undue delay, and the data controller is obliged to erase this data without undue delay, provided one of the following reasons applies:

The personal data that concerns you is no longer necessary for the purposes for which it was collected or otherwise processed.

You withdraw consent on which the processing is based pursuant to Article 6(1) lit. a, or Article 9(2) lit. a GDPR and where there is no other legal basis for the processing.

You object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR.

The personal data related to you have been unlawfully processed.

The personal data related to you have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.

The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

5. Information given to third parties

Where the controller has made the personal data public and is obliged pursuant to Article 17(1) GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including Technical measures, to inform controllers that are processing the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

6. Exceptions

The right to erasure does not exist, provided the processing is required

For exercising the right of freedom of expression and information;
For compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

For reasons of public interest in the area of public health pursuant to Article 9(2) lit. h and Article 9(3) GDPR;

For archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR in so far as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or

For the establishment, exercise or defence of legal claims.

7. Right to notification

If you have asserted your right to obtain rectification, erasure or restriction of your personal data from the data controller, the controller is obliged to notify all the recipients to whom the personal data concerning you was disclosed of this rectification or erasure of the data or the restriction of the processing, unless this proves impossible or involves disproportionate effort.
You have the right to request that the controller notifies you of these recipients.

8. Right to data portability

You have the right to receive the personal data that concerns you, which you have provided to the controller, in a structured, commonly used and machine-readable format. In addition, you have the right to transmit this data to another controller without hindrance from the controller to which the personal data has been provided, where

The right to data portability does not apply to the processing of personal data that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

9. Right to object

You shall have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data that concerns you which is based on Article 6(1) lit. e or f GDPR, including profiling based on those provisions.
The data controller shall no longer process the personal data that concerns you unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
Where personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data concerned for the purpose of this sort of advertising; this also applies to profiling, provided it is connected to such direct advertising.
If you object to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.
You have the option, in the context of the use of information society services – notwithstanding Directive 2002/58/EU – to exercise your right to object by automated means using technical specifications.

Right to object within the meaning of Section 15(3) German Teleservices Act (TMG):

You can stop the analysis of user behaviour, if you block the placing of cookies in your browser by this domain “FALKE.com”, by e.g. setting up an exception in the browser. If necessary, please check the help menu to see how this can be set up in your browser.
Obviously, you can also delete the above-mentioned cookies as necessity arises in individual cases or periodically in order to delete tracking information.
If you have activated the Do Not Track feature (“DNT”), then your visit to the websites is not automatically captured by the web analysis tool. To activate DNT in your browser, look in the help menu of your browser, if you do not know how it is activated. Note: If you use Internet Explorer 10 or 11, your visit is tracked anyway, despite your having activated “Do Not Track”. In this instance, we would ask you to manually disable tracking here.
In addition, you have the option of stopping any form of user analysis on this website in future, if you place a block cookie or opt-out cookie. This can be done via a checkbox. As long as you do not delete this cookie in your browser, the analysis of your user behaviour will be stopped. You can then reactivate web analysis for this website at any time if you wish to do so. You can also find information concerning your objection to a specific use of your personal data in the respective statement concerning this type of use.

10. Right to withdraw the data protection declaration of consent

You have the right to withdraw your data protection declaration of consent at any time. The withdrawal of consent does not affect the legality of the processing carried out on the basis of the consent up until the point of withdrawal.

11. Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply, if the decision

Is necessary for entering into, or performance of, a contract between the you and the data controller;

Is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests or

Is based on your explicit consent.

However, decisions may not be based on special categories of personal data referred to in Article 9(1) GDPR, provided Article 9(2) lit a or g GDPR do not apply and suitable measures to safeguard your rights and freedoms and legitimate interests are in place.
In the cases referred to in points (1) and (3), the data controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the data controller, to express his or her point of view and to contest the decision.

12. Right to lodge a complaint with a supervisory authority

If you consider that the processing of personal data relating to you infringes the GDPR, you have, without prejudice to any other administrative or judicial remedy, the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.
The supervisory authority where the complaint was lodged, informs the complainant of the status and results of the complaint including the possibility of judicial remedy pursuant to Article 78 GDPR.

17. Public list of processing activities

In addition, you can obtain information on the purpose of data collection, processing and use, the type of data stored etc., here in our public list of processing activities.

18. Information on the data protection statement

Unless otherwise agreed, the use of all the information that we have about you and your customer accounts is subject to this data protection statement.
FALKE KGaA reserves the right to adapt the required security measures in line with continuing technological developments and will make all changes known here.
As at: April 2018

19. Further information

The FALKE KGaA undertakes to store your personal data by using all technical and organizational means so that it cannot be accessed by third parties. In addition, employees of the FALKE KGaA and any commissioned service providers are required to maintain confidentiality and adhere to any applicable data protection regulations.

20. Responsible party within the meaning of data protection legislation